Thomas Walpuski noted when OpenSSL would detect an error
condition for a peer certificate, racoon mistakenly ignored
the error. This could allow five invalid certificate states
to properly be used for authentication.

Thomas Walpuski noted when OpenSSL would detect an error
condition for a peer certificate, racoon mistakenly ignored
the error. This could allow five invalid certificate states
to properly be used for authentication.